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Method and System for Ordering, Loading and Using Admission Tickets 

This invention relates to a method and a system for ordering, loading 
and using admission tickets for access to access-controlled service devices. 

In generally known methods and systems for ordering admission tickets, 
the order is carried out by means of telephone call, through a mobile or fixed- 
installed telephone apparatus, to a reservation center, which informs the 
interested customer, for example by means of spoken menu presentation, 
about events and/or performances, and receives reservations, or respectively 
orders, of admission tickets from the customer via the dialing keys of his 
telephone apparatus. The reservations and orders are typically stored in a 
database and forwarded to a respective organizer, for example, who prepares 
the desired admission tickets for the customer to collect, or the desired 
admission tickets are sent to the customer directly by mail, it being possible for 
the billing to take place by dispatched invoice, by cash payment upon 
collection, or by telephone bill. Drawbacks of such methods and systems are, 
for example, that considerable time passes between the ordering and the 
handing over of the admission tickets to the customer or that it is not always 
ensured that admission tickets ordered are also collected. 

For automated access control of access-controlled service devices, such 
as, for example, means of public transportation, secured buildings, halls or 
exhibition grounds, systems and methods are known in which reading devices 
are typically used that are able to read the admission tickets and which are 
connected to access devices that automatically open doors or barriers on the 
basis of the information read in the admission tickets and dear entry to 
respective access-controlled devices. In particular in the case of secured 
buildings or places of employment where the recording of working time is linked 
to the access control, use of personal chlpcards is known which serve the 
authentication of persons and me automatic access control connected 
therewith. In general, such personal chipcards are designed in a targeted way 
only for this special application and, as a rule, the data, relating to persons and 
application specific, is only seldom changed. 

Described in the patent publication DE 43 01 039 C2 is a system for 
administration of jointly used motor vehicles which system combines the 
telephone reservation described above and the access control with a personal 
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*«pcard. In the system according to DE 43 01 039 C2, the customer clarifies 
the reservation by telephone with a center. A computer with a reservation 
program transmits customer reservation data, in accordance with the 
reservation made, by means of a modem via the telephone network and from a 
fixed station with a wireless telephone to a vehicle, where they are able to be 
stored. The customer is equipped with a chlpcard on which his customer 
number and an encrypted code is stored. The chipcard is inserted into a 
portable infrared hand apparatus that is able to communicate with a board 
computer. The access authorization is established through the exchange and 
Uie encryption of random numbers and, if applicable, the vehicle door opened 
lns.de the vehicle, the chipcard is inserted into a card reader and the 
authorization to drive is checked on the basis of the stored reservation data. 
The chipcard used as admission ticket in the system according to DE 43 01 
039 C2 is designed in such a way, however, that it can only be used as an 
admission ticket in a targeted way for this application. 

Described in the patent application EP 713 198 A2 is an electronic ticket 
sale system in which electronic tickets can be loaded on a chipcard by the 
customer at a sales terminal which has data input and data display means in 
exchange for electronic payment from the chipcard. According to EP 71 3 1 98 
A2, the data exchange between the sales terminal and the chipcard can take 
place through a contactless interface or an interface having contacts. In the 
ticket sale system according to EP 713 198 A2, a plurality of sales terminals 
can be connected through communications links, in particular the telephone 
network, to one or more ticket sale centers, which ticket sale centers transmit 
the requested tickets to the sales terminal from which the tickets have been 
requested. 

Described in the patent application WO 98/5851 0 is a mobile radio 
telephone with a removable SIM card (Subscriber Identification Module), that 
has at least one wireless interface, for example an inductive interface or an 
infrared interface, via which the SIM card is able to exchange data with an 
external device without using a mobile telephone network. According to WO 
98/58510, the external device can be an access-control device which releases 
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the access to a protected zone in exchange for receipt of an electronic key 
stored on the SIM card. 

Described in the patent application WO 99/09502 is an electronic 
commerce system in which it is possible to order electronic tickets from a 
service providing system by means of a mobile radio telephone over a mobile 
radio network. According to WO 99/09502, the user identification of the 
ordering user is transmitted In the ticket order by the mobile radio telephone to 
the service providing system. According to WO 99/09502. the ticket order is 
passed on by the service providing system to a ticket issuing system, the user 
identification in the service providing system being replaced by a customer 
number of the respective user. According to WO 99/09502. the ordered ticket 
is subsequently transmitted by the ticket issuing system via the service 
providing system to the mobile radio telephone, from which the ticket order was 
placed, and is stored there, for example on a chipcard. According to WO 
99/09502. the stored tickets can be used as admission tickets for admission to 
access-controlled service devices, for example in a cinema, the tickets being 
transmitted to the service device, for example via a contactless interface. 

It is an object of the present invention to propose a new method and a 
new system for ordering, loading and using admission tickets for access to 
access^ontrolled service devices which in particular are able to be used in a 
flexible way for the most various access-controlled service devices. 

According to the present invention, this object is achieved through the 
features of the independent claims. Further advantageous embodiments follow 
moreover from the dependent claims and from the description. 

In particular this object is Achieved through the invention in that 
admission tickets for access to access-controlled service devices, such as, for 
example, means of public transportation, secured buildings, halls or exhibition 
grounds, are ordered from a reservation center, through transmission of order 
data via an order channel, of various possible order channels, to this 
reservation center, the order data containing the call number of a mobile 
telecommunications terminal, the mobile telecommunications terminal being, for 
example, a mobile radio telephone or a laptop or palmtop computer with 
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suitable communications modules 

tickets being transmitted via a mobile network, for instance a GSM or UMTS 
network, to the communications terminal, to which the said call number is 
assigned, received admission tickets being stored in a memory module for 
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example on a chipcard, in particular a SIM (Subscriber Identity Module) card of 
the said communications terminal, data being exchanged between the memory 
module and a reading device of a said service device via a contactless 
interface, for example an infrared interface, for instance a High Speed Infrared 
5 f HSIR > interface or an IrDA (Infrared Data Association) interface, an inductive 
interface, e.g. a Radio Frequency Identification (RFID) interface, a home RF 
(Radio Frequency) interface, a Digital European Cordless Telecommunications 
(DECT) interface or another Cordless Telecommunications System (CTS) 
Interface or a high frequency radio interface, for instance a so-called "Bluetooth 

io interface," decisions about access authorization for the user of the said 
communications terminal being made taking into account ticket information 
contained in said admission tickets, and, in accordance with the decision made, 
access for the user to the respective service device being granted or denied 
through an access device connected to the said reading device. The 

is advantage of this procedure is that admission tickets for the most various 
access-controlled service devices can be ordered over the most various order 
channels, for example in writing, by telephone with a fixed-installed telephone, 
with .the said mobile communications terminal, by means of a dedicated input 
terminal, or by means of a personal communications terminal, for example via 

20 tiie Internet, and, independently of the order channel used and of the orderer, 
the ordered admission ticket is loaded in a memory module of the mobile 
communications terminal to which the specified call number is assigned, by 
means of which mobile terminal the respective user can visit a respective 
access-controlled service device without further effort and without time delay. 

25 ,n an embodiment variant admission tickets each contain a ticket 

number that is provided with a digital signature. An admission ticket stored in 
the memory module is transmitted to the said reading device, Access data are 
transmitted from the said reservation center to the said reading device, and the 
decision about access authorization is made taking into consideration these 

jo access data and by checking the said signature. This embodiment variant is 
advantageous if the data structure of the admission ticket is supposed to be 
kept simple and if the activities for the processing of the admission ticket are 
supposed to be moved into the reading device of the service device. The 
disadvantage consists at most in that the reading device of the service device 

>s has to be supplied with current data by the reservation center, so a 
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communication link is necessary between the reading device of the service 
device and the reservation center. 

In an alternative embodiment variant, the admission tickets contain ticket 
information about at least one access-controlled service device, for example 
the identity of a theater or a sports stadium, the date of a performance, or 
respectively of a sports event; the decision about access authorization is made 
taking into consideration this ticket information, and in the case of a positive 
decision the admission ticket stored in the memory module is marked as used. 
The advantage of this variant consists in that access-controlled service devices 
do not have to be updated with current data, and therefore can be set up 
autonomously without communication link. 

In a first sub-variant of the last-mentioned embodiment variant ticket 
information is transmitted to the said reading device, and the decision about 
access authorization for the respective user is made in this reading device. In 
a second sub-variant of the last-mentioned embodiment variant the reading 
device transmits a clear device identification to the respective communications 
terminal; the decision about access authorization for the respective user is 
made in this communications terminal taking into consideration in addition the 
said device identification, and the result of this decision is transmitted to the 
said reading device. The second sub-variant is advantageous above all when 
the reading device of the access-controlled service device is supposed to be 
designed as simple as possible, in particular without networking of the reading 
device. 

In an embodiment variant at least certain admission tickets are assigned 
to a particular user, and with the decision about access authorization it is 
checked whether a respective certain admission ticket is assigned to the user, 
who is identified through a user identification in the memory module. 

In an embodiment variant the reading device transmits a digitally 
signed, unambiguous device identification to the communications terminal, and 
the reading device is authenticated in the communications terminal on the 
basis of this device identification before data stored in the memory module are 
transmitted to the reading device. This has the particular advantage that 
admission tickets are not received, or respectively marked as used, by 
unauthorized reading devices. 
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In an embodiment variant, following a positive authentication of the 

reading device, a user identification stored in the memory module is transmitted 

with a digital signature to the reading device, and the reading device 

authenticates the user of the said communications terminal o 
5 user identification. 

In an embodiment variant, following a positive decision by the reading 
device, an access confirmation is transmitted to the said memory module 
regarding successful admission. This has the advantage that the respective 
user is able to prove at a later point in time the access to the respective service 
io device on the basis of this admission confirmation. 

In an embodiment variant, the said contactless interface is supplied with 
energy by the said reading device, for example by means of induction. This 
has the particular advantage that an exchange of data between the memory 
module and the reading device can take place even with tumed-off 
is communications terminal. 

In addition to the method according to the invention, the invention also 
relates to a suitable system for execution of this method. 

An embodiment of the present invention will be described in the 
following on the basis of an example. The example of the embodiment is 
20 illustrated by the single, attached figure, which 

shows a schematic block diagram that presents a communications 
terminal which is connected via a mobile network to a reservation center and is 
able to communicate with the reading device of an access-controlled service 
device via a contactless interface. 

An interested customer is able to order admission tickets for the most 
various access-controlled service devices 3, such as, for example, public 
transportation means, performing arts buildings (e.g. theaters or opera 
houses), performance halls (e.g. cinemas or concert halls) or premises for 
events (e.g. trade fair premises or sports premises) through transmission of 
order data over the most various order channels. The reference number 45 
relates to an input terminal which is connected to a reservation center 4 via a 
communications link. Such an input terminal 45 could be set up at places 
accessible to the public, for instance in public telephone booths (public 
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phones)* at shopping centers, in railway stations or in other publicly accessible 
places that are frequented by many people, and can be used by interested 
customers, for example, to order admission tickets from the reservation center 
4. The reference number 51 relates to a personal communications terminal, for 
example a personal computer with communications modules which is 
connected to the reservation center 4 via a telecommunications network 5, for 
example the public switched telephone network or the Internet, and is able to 
be used by interested customers to order admission tickets from the reservation 
center 4. Mentioned here as further possibilities for order channels should be 
personal verbal ordering at a counter or ticket window of the operator of the 
reservation center 4 or a special marketing organization, telephone calls with 
verbal ordering or ordering with spoken menu presentation or with speech 
recognition or also by written order or ordering by means of a mobile 
communications terminal 1 via a mobile network 6 (for instance verbally or by 
means of SMS or USSD messages), in the case of the verbal and written 
vanants subsequent data entry by data typists of the reservation center4 being 
possibly necessary. The order data transmitted by the interested user to the 
reservation center 4 comprise, for instance, indications about a specific event, 
for example a theatre premiere at the city theater on the 1 3* of May at 8 p.m , 
indications about the desired seating row or, if applicable, the transportation 
class, the number of tickets desired, indications about the type of ticket, for 
instance tickets in a person's name, multiple tickets (subscriptions, day passes, 
weekly passes, etc:) or transferable tickets, indications about mode of payment 
for instance through written invoice by mail, by credit card with indication of the 
credit card number, billing by way of the telephone bill or, if applicable, by cash 
payment, etc. Indicated in addition in the order data with each order is the call 
number of (at least) one mobile communications terminal, for example the 
MSISDN number (Mobile Subscriber ISDN number), on which the ordered 
admission tickets are supposed to be loaded. 

The transmitted order data are received in the reservation center 4 by an 
order module 41 , and are stored in a database of the reservation center 4. The 
reservation center 4 is implemented, for example, on a conventional 
communications server which has at its disposal hardware and software 
components to connect with mobile networks 6 and fixed networks 5 and to 
communicate over them. The reservation center 4 has at its disposal function 
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modules, for example the already mentioned order module 41 or further 
function modules that are described in the following paragraphs and which are 
implemented, for instance, as programmed software. In accordance with the 
obtained order data, a transmission module 44 of the reservation center 4 

5 transmits admission tickets over the mobile network 6, for example a GSM 
(Global System for Mobile Communication), a UMTS network (Universal Mobile 
Telephone System) or another mobile network, to the mobile communications 
terminal 1 specified through the above-mentioned call number, for instance a 
mobile radio telephone or a laptop or palmtop computer with suitable 

io communications module for mobile networks 6. 

The transmission of admission tickets by the reservation center 4 to 
communications terminals 1 takes place, for example, according to the SICAP 
method described in the patent document EP 0 689 368 B1 , the reservation 
center 4 having at its disposal a short message service center (SMSC) for this 

1 5 purpose, for example. According to the SICAP method, transmitted in addition 
to the standard header in so-called SMS short messages are special codes 
which indicate a special Service and are recognized in the identification 
modules of mobile communications terminals, for instance by means of suitable 
filters, and are processed in accordance with the special code according to a 

20 special procedure. The transmission can also take place in another way, for 
instance by means of USSD messages (Unstructured Supplementary Services 
Data) or via a data link. 

The transmitted admission tickets are received in the respective mobile 
communications terminal 1, and are stored there, by a loading module 21 1, in a 

25 memory module 21 , for instance on an SIM card (Subscriber Identification 
Module) of the mobile communications terminal 1. The loading module 211 is, 
for example, a special procedure activated according to the SICAP method, as 
mentioned above, which is implemented for instance as a programmed 
software module on the identification module of the mobile communications 

30 terminal 1 , which is, e.g. a chipcard 2, in particular a SIM card 2 with a 
processor 22 and a memory module 21 . 

Depending upon the embodiment variant and/or application, admission 
tickets each contain a ticket number that is provided with a digital signature, for 
example, or they contain ticket information about at least one access-controlled 
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service device 3. for instance the identity of a theater or a sports stadium and 
the date of a performance, or respectively a sporting event, and, if applicable, 
further additional information, such as a reserved seating row or seat number, 
or, particularly for multiple tickets, a duration of validity or period of validity as 
well as a number of authorized admissions, if applicable. A respective 
customer is preferably able to check (in particular) the detailed marking of an 
admission ticket on the display of his mobile communications terminal 1, as if 
he had a physical admission ticket. Admission tickets can be loaded, for 
example, in the form of small program applications, so-called applets, on 
chipcards 2, which are able to handle such applets, for instance a so-called 
Java card (Java is a registered trademark of SUN Microsystems). Such 
applets, for example, can be automatically erased during marking as used, 
which will be described later. 

The user of a mobile communications terminal 1 approaches, with his 
mobile communications terminal 1, a reading device 31 of an access-controlled 
service device 3, for which he has an admission ticket stored in a memory 
module 21 of the mobile communications terminal 1. Described in the following 
paragraphs will be different embodiment variants for the process during the 
ticket check between the mobile communications terminal 1 and the reading 
device 31 of the access-controlled service device which all have in common the 
exchange of data via a contactiess interface 13 between the mobile 
communications terminal 1 and the reading device 31, for which the reading 
device 31 and the mobile communications terminal 1 are designed with suitable 
transceivers 33, respectively 11. These receivers 11, 33 are suited, for 
example, for an infrared interface, for example a High Speed Infrared (HSIR) 
interface or an I rDA (Infrared Data Association) interface, an inductive 
interface, for instance a Radio Frequency Identification (RFID) interface or a 
Home RF (Radio Frequency) interface, the inductive Interface operating, for 
example, with a frequency situated at 13.56 MHz, a Digital European Cordless 
Telecommunications (DECT) interface or another Cordless 
Telecommunications System (CTS) interface, or a high frequency radio 
interface, for example a so-called "Bluetooth interface." Depending upon the 
type of contactiess interface, the suitable transceiver in the mobile 
communications terminal 1 can be integrated in the housing or on the 
identification module 2 of the communications terminal 1 . For the data 
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exchange with the reading device 31 via this contactless Interface 13, the 
mobile communications terminal 1 has a communications module 212, that Is 
implemented, for instance, as a programmed software module on the 
identification module 2 of the mobile communications terminal 1, which is, for 
example, a SIM card 2 with a processor 22 and a memory module 21 . In all 
described embodiment variants, the decision about access authorization for a 
respective user of a mobile communications terminal i is made in a decision- 
making module 213, 312, the user being granted Or refused access to the 
respective access-controlled service device 3, in accordance with the decision 
made, by means of an access device 32, connected to the reading device 31, 
for example an automatic door or barrier or a signal light or another suitable 
device. 

In a first embodiment variant with admission tickets that each contain a 
ticket number that is provided, for example, with a digital signature, an 
admission ticket stored in the memory module 21 is transmitted to the reading 
device 31 . The reading module 31 is supplied with current access data by an 
updating module 42 of the reservation center 4, for example a programmed 
software module, which data are stored in a table 43 in the reservation center 
4. The transmission of these access data takes place over a 
20 telecommunications network 5, for instance a fixed network, for example the 
public switched telephone network, the Internet, a LAN (Local Area Network) or 
WAN (Wide Area Network), or a mobile network. The supply of the reading 
device 31 with current access data takes place, for example, periodically or 
upon query by the reading device 31. The access data contain, for example, 
25 additional ticket information for a certain ticket number or for all the access 
tickets reserved for the respective access-controlled service device 3. Such 
ticket information includes, for instance, indications about a particular 
performance, such as time and place, about a reserved seat, such as seat 
number or row, and possibly data and/or identification information relating to 
the access-authorized user. According to this first embodiment variant, the 
decision about access authorization for the respective user is made by the 
decision-making module 312 of the reading device 31, for example a 
programmed software module, taking into account the access data 
corresponding to the respective ticket number and by checking the above- 
mentioned digital signature. In this embodiment variant, access tickets that 
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have been used for authorized access to a respective access-controlled device 
3, can be marked as used, for example through updating of the access data 
stored in the reservation center 4. which has been informed accordingly by the 
reading device 31, for instance. 

In a second embodiment variant with access tickets which each contain 
ticket information about at least one access-controlled service device 3, 
decisions about access authorization are made in the decision-making modules 
213, 312 taking into account this ticket information. In this second embodiment 
vanant, the mobile communications terminals 1 each contain a cancelling 
module 214, for example a programmed software module, for instance in the 
memory module 21 of the SIM card 2, which module, in the case of a positive 
deqsion, marks as used the respective admission ticket stored in the memory 
module 21, only one access authorization accordingly being marked as used in 
the case of multiple tickets. In this embodiment variant, the decision can be 
made, in a first sub-variant, by a decision-making module 312 in the reading 
device 31 , for instance with the aid of additional data, such as, for example, a 
reference clock, after the admission ticket has been transmitted, as described 
above, by the mobile communications terminal 1 via the contactless interface 
13 to the reading device 31, the reading device 31 commanding, via the 
contactless interface 13, the above-mentioned cancelling module 214 to mark 
the respective ticket as used (following a positive decision. In a second sub- 
variant, the reading device 31 contains an identification module 314, by means 
of which the reading device 31 identifies itself with the respective mobile 
communications terminal in that the identification module 314; for instance a 
25 programmed software module, transmits by means of the transceiver 33 an 
unambiguous device identification via the contactless interface to this mobile 
communications terminal 1. In this second sub-variant, the admission ticket 
does not need to be transmitted to the reading device 31 since the decision 
about access authorization for the respective user is made in the decision- 
al) making module 213 of the mobile communications terminal 1, additionally 
taking into account the device identification received from the reading device 
31, the decision-making module 213 being, for instance, a programmed 
software module in the memory module 21 of the SIM card 2, and the result of 
the decision-making being transmitted via the contactless interface 13 to the 
35 reading device 31 . 
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It should be mentioned here that the data exchange between the 
memory module 21 of the mobile communications terminal 1 and the reading 
device 31 can also take place with tumed-off communications terminal 1 if the 
components necessary for the data transfer, in particular the contactless 
interface, are supplied externally by the reading device 31 , for example by 
means of Induction of a magnetic coil of the mobile communications terminal 1, 
for instance in the housing or in the interior of the communications terminal 1, 
e.g. on the SIM card 2. The protocol used for the data exchange can specify, 
for example, that the initiation of a respective dialog between the mobile 
communications terminal 1 and the reading device 31 is started by the mobile 
communications terminal 1 through transmission of an initiation sequence. 

In an embodiment variant, certain admission tickets are assigned to a 
particular user, i.e. the mentioned ticket information or the access data stored 
in the table 43 of the reservation center 4 contain identification data about the 
assigned, authorized user, for instance his IMSI number (International Mobile 
Subscriber Identity) or his IDUI (International Debit User Identification). 
Consequently, with the decision about the access authorization, itisalso 
checked whether a respective admission ticket is assigned to the user, who is 
identified through an identification stored in the memory module 21, for 
instance on the SIM card 2. If this check is carried out in the reading device 
31 . for instance in the decision-making module 312, the user identification 
stored in the memory module 21 is transmitted via the contactless interface 13 
to the reading device 31 . If, on the other hand, this check takes place in the 
moMe communications terminal 1, for instance in the decision-making module 
21 3, the user identification stored in the memory module 21 does not have to 
be transmitted to the reading device 31. 

In an embodiment variant, the reading device 31 always transmits, via 
the coritactiess interface 13. a digitally signed unambiguous device 
identification to the mobile communications terminal 1 , for example as a reply 
to an initiation sequence, mentioned above, which starts the dialog between 
the reading device 31 and the mobile communications terminal 1. On the basis 
of this digitally signed device identification, the reading device 31, or 
respectively the associated access-controlled service device 3, is'able to be 
authenticated through an authentication module 215 of the mobile 
communications terminal 1 , the authentication module 215 being, for instance 



CA 02368377 2001-09-18 



12 



a programmed software module, e.g. on the memory module 21 of the SIM card 
2. This makes it possible for admission tickets not to be received or 
respectively marked as used, by unauthorized reading devices 31 since data 
stored in the memory module 21 are not transmitted to the reading device 31 
until this reading device 31 has been clearly identified. In a similar way, the 
reading device 31 is able to authenticate a respective user in that, for example 
following a positive authentication of the reading device 31, a user identification 
stored in the memory module 21 is transmitted with a digital signature via the 
contactless interface 13 to the said reading device 31 from the mobile 
communications terminal l, e.g. through the authentication module 215, and is 
authenticated there by the authentication module 31 1 of the reading device 31, 
e.g. a programmed software module. 

In an embodiment variant, after a positive decision has been made, an 
access confirmation, for acknowledgement of the successful access to the 
a«*ss-controlled service device 3, is transmitted by a confirmation module 313 
of the reading device 31, e.g. a programmed software module, via the 
contactless interface 13, to the mobile communications terminal 1, and is 
stored there in the memory module 21 of the SIM card 2. On the basis of this 
access confirmation, which is preferably provided with a digital signature by the 
confirmation module 313 of the reading device 31 , the respective user is able 
to prove the access to the respective service device 3, for example at a later 
point in time. 

It should be mentioned here that the mobile communications terminall, 
in partcular the memory module 21 of the SIM card 2, can have additional 
software functions that make it possible for an admission ticket stored in the 
memory module 21 of a first mobile communications terminal 1 to be able to be 
tamsmrtted to the memory module of a second mobile communications terminal 
1 . for example by means of the transceiver 1 1 via the contactless interface 1 3 
or via the mobile network 6, e.g. by means of SMS or USSD messages, or via 
another suitable connection between the first and the second mobile 
communications terminal. In a similar way, it is also possible moreover for an 
admission ticket stored in the memory module 21 of a mobile communications 
terminal 1 to be able to be transmitted to an external chipcard, which itself has 
a contactless interface, for instance in the form of an integrated electro- 
magnetic coil, or which is connected to the communications terminal 1 for this 
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purpose via a (second) interface having contacts; so-called dual-slot mobile 
devices are already available on the market 

One skilled in the art will understand that for secured transmission and 
for ensuring the authenticity (genuineness) of the admission tickets and of 
other wirelessly transmitted identifications, for example the mentioned device 
identification oruser Identification, the mobile communications terminal 1, in 
particular the memory module 21 , and the reading device 31 are equipped with 
the necessary functions for suitable signing and/or enciphering methods, for 
example programmed software functions. It is also possible that confidential 
authorities are involved in the authentication, for example when using the aid of 
TTP (Trusted Third Party) services, e.g. for the digital signing of identification 
numbers and/or admission tickets. 

The billing of ordered admission tickets can take place through the 
reservation center 4. for example, according to the mode of payment desired by 
the respective user. 

The area of application of the present invention is very large, and is in 
no way limited only to the application examples given. 

Besides the sale, licensing and operation of described whole systems, If 
can also be interesting to sell or lease data carriers with programmed software 
modules stored thereon, which control a conventional communications server 
in such a way that it acts as a described reservation center 4, orwhich enable 
a mobile communications terminal 1 to take part in the method described, in 
particular in the embodiment as SIM card. Moreover the sale, leasing or the 
operation of reading devices 31 for access-controlled service devices 3 can 
also be very interesting economically. Even the sale, the leasing or the 
operation of input terminals 45 can be worthwhile. 
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Claims 



1 . A method for ordering, loading and using admission tickets for access 
to access-controlled service devices (3), in which method admission tickets are 
stored in a memory module (21) of a mobile communications terminal (1), in 
which method data are exchanged between the memory module (21) and a 
reading device (31) of a respective service device (3) via a contactless 
interface (13), in which method a decision about the access authorization of the 
user of the mobile communications terminal (1) are <sic. is> made taking into 
account ticket information contained in the said admission ticket, andin which 
method, in accordance with the decision made, access of the user to the 
respective service device (3) is granted or denied by an access device (32) 
connected to the said reading device, characterized by the following steps: 

ordering at least one admission ticket from a reservation center 
(4) through transmission of order data via an order channel, of 
various possible order channels, to the said reservation center 
(4), the order data containing the call number of the mobile 
communications terminal (1). and 

transmitting the ordered admission ticket via a mobile network 
(6) to that mobile communications terminal (1). to which the said 
call number contained in the order data is assigned. 

2. The method according to claim 1. wherein the said admission tickets 
each contain a ticket number which is provided with a digital signature, the 
admission ticket stored in the said memory module (21) is transmitted to the 
said reading device (31). access data are transmitted from the said reservation 
center (4) to the said reading device (31), and the decision about access 
authonzation is made taking into account these access data and by checking 
the said signature. 

3, The method according to claim 1 , wherein the said admission tickets 
contain ticket information about at least one access^ontrolled service device 
(3), the decision about access authorization is made taking into account this 
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ticket information and with a positive decision the admission ticket stored in the 
memory module (21 ) is marked as used. 

4. The method according to claim 3, wherein the said ticket information 
is transmitted to the said reading device (31) and the decision is made in this 

5 reading device (31). 

5. The method according to claim 3, wherein the said reading device 
(31) transmits a device identification to the said communications terminal (1), 
the decision is made in this communications terminal (1) additionally taking into 
account the said device identification, and the result of this decision is 

io transmitted to the said reading device (31 ). 

6. The method according to one of the claims 1 to 5, wherein at least 
certain admission tickets are assigned to a particular user, and with the 
decision about access authorization it is checked whether the respective 
certain admission ticket is assigned to the user, who is identified through a user 
identification stored in the said memory module (21). 

7. The method according to one of the claims 1 to 6, wherein the said 
reading device (31) transmits a digitally signed device identification to the said 
communications terminal (1), and the said reading device (31) is authenticated 
in the communications terminal (1) on the basis of this device identification 
before data stored in the memory module (21) are transmitted to the reading 
device (31). 

8. The method according to daim 7, wherein, following a positive 
authentication of the said reading device (31), a user identification, with a 
d.g.tal s.gnature, stored in the said memory module (21), is transmitted to the 
sa.d reading device (31), and the said reading device (31) authenticates the 
user of the said communications terminal (1 ) on the basis of this user 
identification. 

9. The method according to one of the claims 1 to 8, wherein, after a 
positive decision has been made, an access confirmation is transmitted by the 
said reading device (31) to the said memory module (21). 

10. The method according to one of the claims 1 to 9. wherein the said 
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^ntecUess interface (13) is supplied with energy by the said reading device 

*JA> 11 v A system for ordering, loading and using admission tickets, which 
system includes a mobile network (6) in which a multiplicity of users are able to 

Z^^T"* ° f m ° W,e ^^ons terminals (1), and to which 
mobile network (6) at least one reservation center (4) is connected, which 
system includes acxess-controlled service devices (3), for the access to which 
ser^ce devices (3) said admission tickets are used, the said service devices 
-■ W>*e£ provided with reading devices (31) which include transceivers (33) for 
teL-n^r °T* 8 COntacUess (13), the said communications 

ermmals (1) each containing a loading module (211), which loading module 
(211) stores rece,ved admission tickets in a memory module (21) of the 

e^^^f ,,lmUn^Cati0nSterm^na, ^said communications terminals (1) 
each ,nclud,ng a communications module (212) that exchanges data between 
*e said memory module (21) and one of the said reading devices (31) by 
means of a transceiver (1 1) via the said contactless interface (13), which 
m^?r n ^ decisiorHnakin 9 modules (213, 312), which decision-making 
modules (213. 312) make decisions about the access authorization of the user 

Sa ' d COmmunications te ^als (1) taking into account ticket 
mforrmtion contained in the said admission tickets, and the said reading 

ttotl h - ein9 C ° nneCted t0 3CCeSS dGVices (32) « in accordance 
with the deas.cn made, grant or deny the said user access to one of the said 
service devices (3), wherein 

receiv^^ - (4> lndudes an module (41) which 

? Van ° US 0nler channe,s . with order data, for admission 

tckets. the order data comprising the call number of one of the said 
communications terminals (1), and 

. the said reservation center (4) includes a transmission module (44) 
wh.ch transmits ordered admission tickets, via a mobile networ* (6), to that 
communications terminal (1) to which the call number contained in the order 
data is assigned. 

12. The system according to claim 11, wherein the said admission tickets 
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" Cte,number P™^««'*«i9ltal S l 0 „atu re .a 5 aid 

, ' ' ' S COnneC ' e<, ,0 "» *«™*ng devices (31, via a 
'^"^nicaSonsne^ 

SS*"' 1 "f"* « <° ™ of *e MM, devices (31). and 

aWdatee^T^^ ^ «■"»■ ** said 

access date and by chocking the said signature. 

contain^^^T"" 9 ,0 12 ' ^«'<i admission Bckets 

aS»i~ * ^^"S^'es (213. 312) make decisions 

Sred^e?' 8 POS,tVB * aSl0n ' ma * s as ^ "«» ticket 
stored in the rospoctivo momoiy module (21). 

modulel 4 ^ IST t 003 ^ 8 10 ^ 13 ' Whefeln said dedsic^wnaldng 
modules (312) are located in the said reading devices (31). 

' (31> .1? J' 8 ' 6 '? a ° C0 "" n8 18 daim 13. "herein the said reading devices 
. " ldWt, " Ca,l< > n «*■•' (314) which transmits a device 
2T? - * "*«-«« teoninals (1). me said 

ta™>a* (1). and the said decfeion-making mod^s ( 3i 2 ,make decisions 
00655 au,h< » i ^'»' «*» into account in addition the Jd Zee 

16 . 1,16 8yStem accoraln 9 10 <*e of the claims 1 1 to 15 wherein at least 

S 2 3 3ii, t aUSer iocn ~ ^ •» said dedsion-making 
rirwl^ de °"" n9 ^ access authorization. Check whether 
the user -denttcaton of the respective admission ticket coincides with the user 
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identification in the respective memofy module (21). 

* J* The . wtom accordin 9 to one of the claims 11 to 16, wherein the said 
nsadmg de (31) each indude an identification module (314), whi* 
transm,ts a digitally signed de^/fdenUficationtooneofthesaid 

to^T^T^* (1> ' a0d ^ 8a,d Wnu^ont terminals (1) eaoj 
mdude afirst authentication module (215), which authenticates a respective 
readmg dev,ce (31) on the basis of this device identification. 

(21) ea lL!^ SySternaCCOrt,in9tOC,ajm 17 ' said memory modules 

^15^ansm,ts the stored user identification with a digital signature to the 
? ■? 9 deViCe ( 31 ). a «er a positive authentjcatJon of the said 

^uthZlT 06 (31) ' 8nd the SaW read ^ devices (31) each include a second 
au^tionm^ 

communications terminal (1) on the basis of this user identification, 
readj^^ a ^ prdin9 to 006 of the daims 11 to 18, wherein the said 

T ,ndude 9 confimation modu,e (313) - *** after a 

^ tranSmitS an access cbrthnrton to the 

respective memory module (21). 

contaJL 171 ; T temaCCOrdin9 t0one ofthe Claims 1 1 to 1 9, wherein the said 
contactless nterface (13) is supplied in each case with energy by the said 
reading devices (31). i««w»«u. 
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Abstract 

Method and system for ordering, loading and using admission tickets for 
access to access-controlled service devices (3), in which admission tickets are 

5 ordered from a reservation center (4) through transmission of order data via an 
order channel, the order data comprising the call number of a mobile 
communications terminal (1) to which the ordered admission tickets are 
transmitted via a mobile network (6) and are stored there in a memory module 
(21). The data exchange between this memory module (21 ) and a reading 

10 device (31) of a said service device (3) takes place over a contactless Interface 
(13). Decisions about the access authorization of the user of the said 
communications terminal (1) are made, for example in the reading device (31) 
or in the communications terminal (1), taking into account the ticket information 
contained in the said admission ticket, for example limited to a digitally signed 

is ticket number or with indications about the respective service device, and, in 
accordance with the decision/access to the service device (3) is given or 
denied to the user through an access device (32) connected to the said reading 
device. 

20 



25 



(sole figure) 
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Legend for the Reference Numerals 

I mobile communications terminal 

II transceiver 

13 contacHess interface 

5 2 SIM card (chipcard) 

21 memory module 

211 loading module 

212 communications module 

213 decision-making module 
io 214 cancelling module 

215 authentication module 

22 processor 

3 service device 

31 reading device 

is 311 authentication module 

312 decision-making module 

313 confirmation module 

314 identification module 



1 1 
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32 access device 

33 transceiver 

4 reservation center 
41 order module 

5 42 updating module 

43 table with access data 

44 transmission module 

45 input terminal 

5 telecommunications network 
io 51 communications terminal 

6 mobile network 
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